SEMICONDUCTOR MEMORY DEVICE

(19)

(11)

EP 1 840 784 A1

(12)	EUROPEAN PATENT APPLICATION
	published in accordance with Art. 158(3) EPC

(43)	Date of publication:
	03.10.2007 Bulletin 2007/40

(21)	Application number: 05774891.5

(22)	Date of filing: 24.08.2005

(51)

International Patent Classification (IPC):

G06F 21/24^(2006.01)

(86)	International application number:
	PCT/JP2005/015354

(87)	International publication number:
	WO 2006/051639 (18.05.2006 Gazette 2006/20)

(84)	Designated Contracting States:
	AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LI LT LU LV MC NL PL PT RO SE SI SK TR

(30)

Priority:

15.11.2004 JP 2004330570

(71)	Applicants:
	Yamaguchi, Ikuo Yokohama-shi, Kanagawa 2260026 (JP) Umezu, Ryuji Ookamedani, Fukakusa, Fushimi-ku Kyoto-shi, Kyoto 612-0844 (JP)

(72)	Inventors:
	Yamaguchi, Ikuo Yokohama-shi, Kanagawa 2260026 (JP) Umezu, Ryuji Ookamedani, Fukakusa, Fushimi-ku Kyoto-shi, Kyoto 612-0844 (JP)

(74)	Representative: Winter, Brandl, Fürniss, Hübner Röss, Kaiser, Polte Partnerschaft Patent- und Rechtsanwaltskanzlei
	Alois-Steinecker-Strasse 22 85354 Freising 85354 Freising (DE)

(54)	SEMICONDUCTOR MEMORY DEVICE

(57) A semiconductor memory 10 includes a memory control section 13 and a memory core section 11. A command judgment circuit 132 in the memory control section 13 changes the operating mode of the semiconductor memory 10 in response to a command sent from a controller of an information processing apparatus. In a first mode, a decryption process is performed in a command decryption circuit 131, and data outputted from the memory core section 11 is not scrambled. In a second mode, the decryption process is not performed in the command decryption circuit 131, and the command outputted from the memory core section 11 is scrambled.

Description

SEMICONDUCTOR MEMORY DEVICE

Technical Field

[0001] The present invention relates to a semiconductor memory device and, more particularly, to the security of various types of data stored in a semiconductor memory.

Background Art

[0002] An information processing apparatus has been known which includes a semiconductor memory removable therefrom and which operates using data containing a program stored in the semiconductor memory. A variety of mechanisms have been proposed to provide the security of the data stored in this semiconductor memory.

[0003] Patent document 1 discloses a technique for scrambling data outputted from a semiconductor memory by the use of key data to provide the security of the data.

[0004] Patent document 2 or Patent document 3 discloses a technique of performing a type of encryption by means of a logic circuit (logic) on address data outputted to a semiconductor memory or data outputted from the semiconductor memory to provide the security of the data.

[0005] Patent document 1: Japanese Patent Application Laid-Open No. 9-106690
Patent document 2: Japanese Patent Application Laid-Open No. 2001-35171
Patent document 3: Japanese Patent Application Laid-Open No. 7-219852

[0006] Patent document 1, however, discloses a security method using a scrambling scheme which is advantageous in high data transfer efficiency but is disadvantageous in generally low strength of security. Patent document 2 or Patent document 3 employs a one-step logic operation by means of the logic circuit, which features fast processing but is disadvantageous in low confidentiality because it is easy to analyze the security method if what logic circuit is used is known.

[0007] To improve the confidentiality, it is contemplated to use an encryption scheme such that an inexpensive processing circuit such as a single-chip microcomputer is inserted between the semiconductor memory and the information processing apparatus to process a cryptographic algorithm. The security method employing such an encryption scheme, however, is disadvantageous in low data transfer efficiency although having the advantage of its high strength of security.

Disclosure of Invention

[0008] It is an object of the present invention to provide a semiconductor memory having a high-level security function and excellent read performance in consideration for a balance between the strength of security and data transfer efficiency.

[0009] A first aspect of the present invention is intended for a semiconductor memory device removably mounted to an information processing apparatus. There are provided: a memory core section for storing therein data including a program to be protected, the memory core section including an address input section and a data output section; an input/output terminal section including command input terminals for receiving a command including an instruction code and address data from the information processing apparatus, and data output terminals for providing data read from the memory core section to the information processing apparatus; and a memory control means connected between the memory core section and the input/output terminal section. The memory control means includes a command decryption means selectively operative to decrypt the command provided to the command input terminals or to output the command intactly, a scrambling means selectively operative to scramble the data read from the memory core section or to output the data intactly, a command judgment means for judging whether the command provided from the information processing apparatus is a first command specifying a transition to a first operating mode or a second command specifying a transition to a second operating mode, and an operating mode control means selecting the first operating mode for enabling a command decryption function of the command decryption means in response to a judgment of the first command made by the command judgment means, and selecting the second operating mode for enabling a scrambling function of the scrambling means in response to a judgment of the second command made by the command judgment means.

[0010] According to a second aspect of the semiconductor memory device of the present invention, in the first aspect, the memory control means includes a descrambling means selectively operative to pass the command provided to the command input terminals intactly therethrough or to descramble the command, and the operating mode control means disables a descrambling function of the descrambling means when the first operating mode is selected.

[0011] According to a third aspect of the semiconductor memory device of the present invention, in the first aspect, the operating mode control means enables the descrambling function of the descrambling means when the second operating mode is selected.

[0012] A fourth aspect of the present invention is intended for a semiconductor memory device removably mounted to an information processing apparatus. There are provided a memory core section for storing therein data including a program to be protected, the memory core section including an address input section and a data output section, an input/output terminal section including command input terminals for receiving a command including an instruction code and address data from the information processing apparatus, and data output terminals for providing data read from the memory core section to the information processing apparatus, and a memory control means connected between the memory core section and the input/output terminal section. The memory control means includes a descrambling means selectively operative to descramble the command provided to the command input terminal or to output the command intactly, a command decryption means selectively operative to decrypt the command provided to the command input terminals or to output the command intactly, a command judgment means for judging whether the command provided from the information processing apparatus is a first command specifying a transition to a first operating mode or a second command specifying a transition to a second operating mode, and an operating mode control means selecting the first operating mode for enabling a command decryption function of the command decryption means in response to a judgment of the first command made by the command judgment means, and selecting the second operating mode for enabling a descrambling function of the descrambling means in response to a judgment of the second command made by the command judgment means.

[0013] According to a fifth aspect of the semiconductor memory device of the present invention, in the fourth aspect, the memory control means includes a scrambling means selectively operative to scramble the data read from the memory core section or to output the data read from the memory core section intactly. The operating mode control means enables a scrambling function of the scrambling means when the second operating mode is selected.

[0014] According to a sixth aspect of the semiconductor memory device of the present invention, in the fifth aspect, the operating mode control means disables the scrambling function of the scrambling means when the first operating mode is selected.

[0015] A seventh aspect of the present invention is intended for a semiconductor memory device removably mounted to an information processing apparatus. There are provided a memory core section for storing therein data including a program to be protected, the memory core section including an address input section and a data output section, an input/output terminal section including command input terminals for receiving a command including an instruction code and address data from the information processing apparatus, and data output terminals for providing data read from the memory core section to the information processing apparatus, and a memory control means connected between the memory core section and the input/output terminal section. The memory control means includes a descrambling means selectively operative to descramble the command provided to the command input terminal or to output the command intactly, a command decryption means selectively operative to decrypt the command provided to the command input terminals or to output the command intactly, a scrambling means selectively operative to scramble the data read from the memory core section or to output the data intactly, a command judgment means for judging whether the command provided from the information processing apparatus is a first command specifying a transition to a first operating mode or a second command specifying a transition to a second operating mode, and an operating mode control means selecting the first operating mode for disabling a descrambling function of the descrambling means and for enabling a command decryption function of the command decryption means in response to a judgment of the first command made by the command judgment means, and selecting the second operating mode for enabling one of the functions of the descrambling means and the scrambling means in response to a judgment of the second command made by the command judgment means.

[0016] According to an eighth aspect of the semiconductor memory device of the present invention, in the seventh aspect, the operating mode control means enables both of the functions of the descrambling means and the scrambling means in response to the judgment of the second command made by the command judgment means.

[0017] According to a ninth aspect of the semiconductor memory device of the present invention, in the seventh aspect, the operating mode control means enables the scrambling function of the scrambling means in response to the judgment of the first command made by the command judgment means.

[0018] According to a tenth aspect of the semiconductor memory device of the present invention, in any one of the first to ninth aspect, the input/output terminal section includes a predetermined number of terminals which are used as both the command input terminals and the data output terminals by switching therebetween in a time-sharing manner.

[0019] According to an eleventh aspect of the semiconductor memory device of the present invention, in the first or seventh aspect, the memory control means includes a register for setting a scrambling condition of the scrambling means. The operating mode control means updates the contents of the register during an operation in the first operating mode.

[0020] According to a twelfth aspect of the semiconductor memory device of the present invention, in the fourth aspect, the memory control means includes a register for setting a descrambling condition of the descrambling means. The operating mode control means updates the contents of the register during an operation in the first operating mode.

[0021] According to a thirteenth aspect of the semiconductor memory device of the present invention, in any one of the first to twelfth aspect, the semiconductor memory device being controlled by a command provided from the information processing apparatus so that a period of operation in the first operating mode is longer than a period of operation in the second operating mode.

[0022] The present invention provides the plurality of operating modes different in security strength, and operates while changing between these operating modes to achieve the semiconductor memory device with enhanced security strength and excellent read performance.

[0023] Further, the semiconductor memory device according to the present invention initializes the condition of scrambling processing when in a mode in which encryption is used and security strength is high while operating mainly in a mode in which scrambling is used and security strength is low. This efficiently compensates for the strength of the security in the mode in which the security strength is low, to provide excellent read performance on average for all of the operating modes.

[0024] The objects, features, aspects and advantages of the present invention will become more apparent from the following detailed description of the present invention and accompanying drawings.

Brief Description of Drawings

[0025]

[Fig. 1] is a general drawing of an information processing apparatus according to embodiments of the present invention;

[Fig. 2] is a circuit block diagram of a semiconductor memory according to a first embodiment;

[Fig. 3] is a specific block diagram of a command decryption circuit;

[Fig. 4] is a specific block diagram of a data scrambling circuit;

[Fig. 5] is a block diagram of a semiconductor memory according to a second embodiment;

[Fig. 6] is a specific block diagram of a command descrambling circuit;

[Fig. 7] is a block diagram of a semiconductor memory according to third to eighth embodiments;

[Fig. 8] is a transition diagram of operating modes; and

[Fig. 9] is a diagram showing a memory map in which storage regions are managed depending on the operating modes.

Best Mode for Carrying Out the Invention

[0026] Embodiments according to the present invention will now be described with reference to the drawings. Fig. 1 is a diagram showing a relationship between a semiconductor memory device 10 according to the present invention and an information processing apparatus 1 to which the semiconductor memory device 10 is applied. In the embodiments of the present invention, the semiconductor memory device (hereinafter referred to simply as a "semiconductor memory") 10 is a nonvolatile memory (for example, a ROM, a flash memory or the like) removable from the body of the information processing apparatus 1. The semiconductor memory 10 fixedly stores therein various data including a program, image data, music data and the like the confidentiality of which must be protected from unauthorized duplication or unauthorized reading.

[0027] The information processing apparatus 1 includes a CPU and a RAM (not shown), and executes a variety of information processing depending on the data stored in the ROM (not shown) by replacing the semiconductor memory 10. The semiconductor memory 10 and the information processing apparatus (or the information processing apparatus body) 1 constitute an information processing system 2.

{First Embodiment}

[0028] Next, the construction of the semiconductor memory 10 according to a first embodiment will be described. Fig. 2 is a circuit block diagram of the semiconductor memory 10. The semiconductor memory 10 includes a memory core section 11 and an input/output terminal section 12. The semiconductor memory 10 provides the security of data stored in the memory core section 11 by inserting a memory control section 13 between the memory core section 11 and the input/output terminal section 12.

[0029] The input/output terminal section 12 includes command input terminals for receiving a command provided from the information processing apparatus 1, and data output terminals for outputting data read from the memory core section 11. The command input terminals receive a command provided from the information processing apparatus 1 through command buses (sometimes referred to generally as address buses). The data output terminals are connected to data buses of the information processing apparatus 1.

[0030] When the information processing apparatus 1 is of the type which uses common buses serving as both the command buses and the data buses and which outputs or inputs commands and data by switching therebetween in a time-sharing manner, the command input terminals and the data output terminals are combined (used commonly) in terms of hardware. In this case, if the number of bits of a command and data is greater than the number of terminals, the command or data is provided in a plurality of divided parts.

[0031] Herein, the command provided from the information processing apparatus 1 contains an instruction code and address data. Thus, the command input terminals are terminals for receiving the instruction code given through the command buses and the address data given through the address buses. The data output terminals are terminals for outputting data outputted from the memory core section 11 to the data buses.

[0032] All or at least one of the command input terminals doubles as all or at least one of the data output terminals. The terminals are used in a time-sharing manner differently at the time of the input of a command and at the time of the output of data. Such a construction can reduce the number of bus lines for connection between the information processing apparatus 1 and the semiconductor memory 10.

[0033] The command includes a read command for the information processing apparatus 1 to read the data stored in the memory core section 11, and an operating mode switching command for the information processing apparatus 1 to control the operating modes of the semiconductor memory 10.

[0034] The memory core section 11 is a storage region containing a multiplicity of memory cells and the like. An inexpensive mask ROM is used for the memory core section 11, but the memory core section 11 is not limited to this. A nonvolatile memory including a flash memory, an EPROM and the like may be used for the memory core section 11.

[0035] The data stored in the memory core section 11 includes various data such as a program, image data, voice data, game data and the like. The memory control section 13 is a circuit for controlling access to the data stored in the memory core section 11, and has the function of ensuring the security of the data.

[0036] The memory control section 13 is a circuit for carrying out the access control of the memory core section 11, and has the function of ensuring data security or security.

[0037] The memory control section 13 of the embodiment of Fig. 2 is constructed including a command decryption circuit 131, a command judgment circuit 132, a data scrambling circuit 133, a mode control circuit 134, and a scrambling register (hereinafter referred to simply as a "register") 135.

[0038] The command decryption circuit 131 is a circuit selectively operative to decrypt a command received from the information processing apparatus 1 or to output the command intactly. The data scrambling circuit 133 is a circuit selectively operative to perform a scrambling process on data outputted from the memory core section 11 or to output the data intactly. Thus, an encryption process is performed on a command provided from the information processing apparatus 1 to the semiconductor memory 10 for the purposes of protecting the confidentiality of the command and consequently controlling access to the semiconductor memory 10. Further, a scrambling process is performed on data to be outputted from the semiconductor memory 10 to the information processing apparatus 1 for the purpose of protecting the confidentiality of the data.

[0039] The encryption process, as that term is used in the present invention, does not include the scrambling process (bit manipulation) on address buses and data buses. In contrast with the scrambling process which makes information unintelligible by means of the bit manipulation, the encryption process according to the present invention is the process of encrypting the command itself containing a bit operation on a bit-by-bit basis. For example, an encryption scheme belonging to a secrete key cryptosystem (also referred to as a common key cryptosystem) may be adopted for the encryption process according to the present invention.

[0040] Fig. 3 shows a specific construction of the command decryption circuit 131. The command decryption circuit 131 includes a body 131t of the command composite circuit and a bus switching circuit 131s s provided at its input side. The bus switching circuit 131s is constructed for selection as to whether to output a command through the body 131t of the command decryption circuit or to output the command intactly, in response to a switching control signal provided from the mode control circuit 134.

[0041] Specifically, when the switching control signal which turns ON a command decryption function is provided from the mode control circuit 134, the command inputted from the input/output terminal section 12 is provided to the body 131t of the command decryption circuit 131, and the command decryption function is activated (or enabled).

[0042] On the other hand, when the switching control signal which turns OFF the command decryption function is provided from the mode control circuit 134, the command inputted from the input/output terminal section 12 is outputted through a bypass line so as to pass intactly, whereby the command decryption function is deactivated (or disabled). Thus, the command decryption circuit 131 is controlled to be ON/OFF by the switching control signal.

[0043] A specific construction of the body 131t of the command decryption circuit is such that a circuit for performing a bit operation on one unit of data (for example, one byte or a predetermined number of bytes) is used to perform a computing process (decryption process) which is the reverse of encryption. An example of the circuit for performing the bit operation includes a circuit for performing logic operations on one unit of data (for example, one byte or a predetermined number of bytes) in a plurality of steps by the use of logic circuits (AND, OR, NAND, exclusive-OR and the like). Another example of the command decryption circuit 131 may be a circuit which performs a simple decryption algorithm computation by the use of a small-scale CPU such as a single-chip microcomputer.

[0044] Fig. 4 shows a specific construction of the data scrambling circuit 133. The data scrambling circuit 133 includes a body 133t of the data scrambling circuit and a bus switching circuit 133s provided at its input side. The bus switching circuit 133s is constructed for selection as to whether to output data read from the memory core section 11 through the data scrambling circuit 133 or to output the read data intactly, in response to a switching control signal provided from the mode control circuit 134.

[0045] That is, when the switching control signal which turns ON a data scrambling function is inputted from the mode control circuit 134, the data read from the memory core section 11 is outputted through the body 133t of the data scrambling circuit. When the switching control signal which turns OFF the data scrambling function is inputted, the data read from the memory core section 11 is outputted through a bypass line so as to pass intactly, whereby the data scrambling function is deactivated (or disabled). Thus, the data scrambling circuit 133 is controlled to be ON/OFF by the switching control signal.

[0046] A specific example of the body 133t of the data scrambling circuit may be a circuit which performs bit operation such as bit replacement, bit manipulation, or bit inversion, in accordance with certain regularity.

[0047] The command judgment circuit 132 judges the descriptions of a command provided from the information processing apparatus 1 to output data for transition of the operating modes. When the command is a data read command for reading data stored in the memory core section 11, the command judgment circuit 132 provides a read control signal decrypted by the command decryption circuit 131 to the memory core section 11, and provides the command given through the command decryption circuit 131 as a read address to the memory core section 11.

[0048] Additionally, the command judgment circuit 132 judges whether or not the decrypted command is a command for switching control of the operating modes to be described later, and provides it as mode transition information to the mode control circuit 134. The command which gives rise to the mode transition information is generated by the CPU of the information processing apparatus 1. The generation of the command which gives rise to the mode transition information is timed uniquely by the CPU of the information processing apparatus 1 and is responsive to the read of part of the program stored in the memory core section 11.

[0049] The mode control circuit 134 effects the ON/OFF control of the command decryption circuit 131 and/or the data scrambling circuit 133 in accordance with the result of the judgment of the command by the command judgment circuit 132 to control the switching of the operating modes of the semiconductor memory 10, consequently effecting the access control of the memory core section 11. The mode control circuit 134 also has the function of performing an initialization process on the scrambling register (hereinafter referred to simply as a "register") 135, and sets a scrambling value prior to the scrambling operation of the data scrambling circuit 133.

[0050] That is, the semiconductor memory 10 is switchable between two operating modes shown in Table 1.

[0051]

[Table 1]

Mode	Command Decryption Circuit	Data Scrambling Circuit
First Mode	ON	OFF
Second Mode	OFF	ON

[0052] These two operating modes are controlled by the command provided from the information processing apparatus 1 as described above. When the command for switching control of the operating modes is provided from the information processing apparatus 1, the command judgment circuit 132 judges the command. When the command judgment circuit 132 judges that the command is the command for switching control of the operating modes, the command judgment circuit 132 provides the mode transition information to the mode control circuit 134. Specifically, the command judgment circuit 132 judges whether the command is a command specifying the transition to the first mode shown in Table 1 or a command for specifying the transition to the second mode, to provide the result of judgment as the mode transition information to the mode control circuit 134.

[0053] The mode control circuit 134 effects the switching control of the operating modes in response to the mode transition information provided from the command judgment circuit 132. For example, when the mode transition information specifying a change to the first mode is provided, the mode control circuit 134 provides an ON control signal to the command decryption circuit 131 to enable the command decryption function, and provides an OFF control signal to the data scrambling circuit 133 to disable the data scrambling function. This places the command decryption circuit 131 into an operating mode in which the decryption process is executed, and places the data scrambling circuit 133 into an operating mode in which the scrambling process is not executed.

[0054] On the other hand, when the mode transition information specifying a change to the second mode is provided, the mode control circuit 134 provides an OFF control signal to the command decryption circuit 131, and provides an ON control signal to the data scrambling circuit 133. This places the command decryption circuit 131 into an operating mode in which the decryption process is not executed, and places the data scrambling circuit 133 into an operating mode in which the scrambling process is executed.

[0055] Upon receipt of the mode transition information, the mode control circuit 134 provides mode information to the command judgment circuit 132. Based on the mode information, the command judgment circuit 132 judges the type of the command provided from the command decryption circuit 131. In other words, the command judgment circuit 132 judges the type of the command by reference to the mode information because the command to be judged (that is, the command provided from the information processing apparatus 1) has different command meanings depending on the operating modes if the same code is given.

[0056] Next, operations in the respective modes and the mode switching operation will be described. First, the operation of the semiconductor memory 10 (substantially, the memory control section 13) in the first mode will be described.

[0057] At the turning-on of the information processing apparatus 1, the semiconductor memory 10 is set so as to operate in the first mode. Thus, when power is turned on, the mode control circuit 134 provides the ON control signal to the command decryption circuit 131, and provides the OFF control signal to the data scrambling circuit 133.

[0058] Then, when an encrypted command is provided from the information processing apparatus 1 to the semiconductor memory 10, the command is provided through the input/output terminal section 12 to the command decryption circuit 131. At this time, the command decryption circuit 131 is controlled to be ON because the semiconductor memory 10 operates in the first mode. Therefore, the encrypted command is subjected to the decryption process in the command decryption circuit 131, and the decrypted command is provided to the command judgment circuit 132.

[0059] The command judgment circuit 132 extracts an instruction code and an address code from the decrypted command to provide a read signal and address data to the memory core section 11. In response to this, data is read from the memory core section 11. The data read from the memory core section 11 is provided to the data scrambling circuit 133.

[0060] At this time, the data scrambling circuit 133 is controlled to be OFF because the semiconductor memory 10 operates in the first mode. Therefore, the data read from the memory core section 11 bypasses the scrambling circuit 133 and is outputted from the input/output terminal section 12. The data read from the memory core section 11 is then read into the information processing apparatus 1 through the input/output terminal section 12 and the data buses (not shown).

[0061] The information processing apparatus 1 executes a process corresponding to the read data. Subsequently, the information processing apparatus 1 generates commands sequentially and read data, whereby similar operations are repeated.

[0062] Next, description will be given on an instance wherein the semiconductor memory 10 operating in the first mode is switched to the second mode, upon receipt of an input of a command for mode switching to the second mode.

[0063] Prior to the generation of the command for mode switching to the second mode, the information processing apparatus 1 generates an encrypted command containing control data for initializing the register 135 and a descrambling value to provide the encrypted command to the semiconductor memory 10.

[0064] This command is provided through the input/output terminal section 12 to the command decryption circuit 131. This encrypted command is decrypted by the command decryption circuit 131, and the command judgment circuit 132 judges that this command is the command for initializing the register 135 (for specifying the setting of the descrambling value). The initializing command and the descrambling value are provided to the register 135 by the mode control circuit 134, and the descrambling value is loaded into the register 135.

[0065] Subsequently, when the information processing apparatus 1 outputs the command for mode switching to the second mode, this command is provided through the input/output terminal section 12 to the command decryption circuit 131. At this time, the command decryption circuit 131 is controlled to be ON and is enabled because the semiconductor memory 10 operates in the first mode. Therefore, this command is decrypted in the command decryption circuit 131, and the decrypted command is provided to the command judgment circuit 132.

[0066] Because the mode information currently given from the mode control circuit 134 indicates the first mode, the command judgment circuit 132 judges that the inputted command is the command for mode switching to the second mode to provide the mode transition information about the transition to the second mode to the mode control circuit 134.

[0067] The mode control circuit 134 accordingly controls the command decryption circuit 131 to be OFF and controls the data scrambling circuit 133 to be ON. Thus, the mode switching to the second mode is done. Also, the mode control circuit 134 loads the data about the scrambling value into the register 135 to define the scrambling regularity of the data scrambling circuit 133.

[0068] Next, the operation of the semiconductor memory 10 in the second mode will be described. In the second mode, the information processing apparatus 1 generates an unencrypted command to provide the unencrypted command to the semiconductor memory 10. The command in this case principally represents a read address for the memory core section 11.

[0069] At this time, the command provided from the information processing apparatus 1 bypasses the command decryption circuit 131 (that is, is not decrypted) and is provided to the command judgment circuit 132 because the command decryption circuit 131 is controlled to be OFF (disabled). In response to this, the command judgment circuit 132 extracts an instruction code (a read instruction or a read signal) and address data from the command to provide the instruction code and the address data to the memory core section 11. Thus, data in an addressed memory region are sequentially read from the memory core section 11.

[0070] The data read from the memory core section 11 is provided to the data scrambling circuit 133. At this time, the data scrambling circuit 133 is controlled to be ON (enabled) because the memory control section 13 operates in the second mode. Therefore, the data read from the memory core section 11 is subjected to the scrambling process by the data scrambling circuit 133. After the scrambling, the read data is outputted through the input/output terminal section 12 and the data buses to the information processing apparatus 1.

[0071] The information processing apparatus 1 executes information processing corresponding to the read data (e.g., decryption process which is the reverse of encryption).

[0072] Subsequently, the information processing apparatus 1 generates unencrypted commands sequentially, whereby the above-described operation is repeated, that is, the operation in which the commands are provided to the command judgment circuit 132 without being decrypted, and the data read from the memory core section 11 is outputted to the information processing apparatus 1 after being subjected to the scrambling process.

[0073] Specifically, the data read from the semiconductor memory 10 in the second mode is outputted as currently meaningless data because the data stored in the memory core section 11 is scrambled by the data scrambling circuit 133. Thus, the data stored in the memory core section 11 is protected if unauthorized read is done.

[0074] The information processing apparatus 1, however, uses data obtained by descrambling the above-mentioned data based on the scrambling regularity in the data scrambling circuit 133 because the regularity is known.

[0075] Next, description will be given on an instance wherein the semiconductor memory 10 operating in the second mode is switched to the first mode.

[0076] The information processing apparatus 1 generates a command for mode switching to the first mode to provide the command for mode switching to the first mode to the semiconductor memory 10. This command is an unencrypted command, and is provided through the input/output terminal section 12 to the command decryption circuit 131.

[0077] At this time, the command decryption circuit 131 is controlled to be OFF because the semiconductor memory 10 operates in the second mode. Therefore, the command bypasses the command decryption circuit 131 (that is, the command is not decrypted but remains in its current data form) and is provided to the command judgment circuit 132.

[0078] The command judgment circuit 132 judges that the inputted command is the command for mode switching to the first mode to provide the mode transition information about the transition to the first mode to the mode control circuit 134. The mode control circuit 134 accordingly switches ON the command decryption circuit 131 and switches OFF the data scrambling circuit 133. Thus, the mode switching to the first mode is done.

[0079] The operation of the semiconductor memory 10 according to the first embodiment, that is, the access control of the memory core section 11 by the memory control section 13 is carried out as described above.

[0080] In the first embodiment, the access control of the semiconductor memory 10 is effected while a mode change (or a mode transition) is made between the first mode in which the security strength is high as the command is encrypted and the second mode in which the data is scrambled and the security strength is low.

[0081] Thus, a combination of the presence/absence of command encryption and the presence/absence of data scrambling, that is, a data security method changes with time. This makes it difficult to analyze the command types and data scrambling regularity, to provide the security of the data stored in the memory core section 11.

[0082] Further, the scrambling process, in which the data is made jumbled by means of the bit manipulation (that is, the replacement of bit positions on the data buses), requires a slight processing burden and short time for the scrambling process. The decryption process, on the other hand, requires processing time but improves the security strength.

[0083] Thus, combining the first mode in which the security strength is high but the processing burden is heavy and the second mode in which the security strength is low but the processing burden is slight achieves improvements in processing speed while the security strength is maintained high.

[0084] Additionally, difficulties in analyzing a security system are provided to improve the confidentiality of the data stored in the memory core section 11, thereby effectively preventing unauthorized duplication thereof.

{Second Embodiment}

[0085] Next, the construction of a semiconductor memory 10A according to a second embodiment will be described. Fig. 5 is a block diagram of the semiconductor memory 10A. Components similar to those of the first embodiment will not be described.

[0086] The semiconductor memory 10A according to the second embodiment differs from the first embodiment in that a memory control section 13A includes a command descrambling circuit 136 in place of the data scrambling circuit 133. Specifically, the second embodiment is constructed so that the data read from the memory core section 11 is not subjected to the bit manipulation, but a command provided from the information processing apparatus 1 is decrypted if the command is encrypted and is subjected to a descrambling process if the command is scrambled. The descrambling value is set in the register 135.

[0087] The command descrambling circuit 136 is a circuit for performing the descrambling process on a command provided from the information processing apparatus 1. Thus, a command is subjected to the scrambling process and/or the encryption process when the information processing apparatus 1 provides the command to the semiconductor memory 10.

[0088] the command descrambling circuit 136 performs a bit manipulation process so as to convert the command subjected to the scrambling process back into its original command, based on the descrambling value loaded in the register 135. The descrambling value serves as reference data for causing the reverse bit manipulation based on the regularity of the scrambling process of the information processing apparatus 1.

[0089] Fig. 6 shows a specific construction of the command descrambling circuit 136. The command descrambling circuit 136 includes a body 136t of the command descrambling circuit and a bus switching circuit 136s provided at its input side.

[0090] The bus switching circuit 136s receives a switching control signal which turns ON a command descrambling function from the mode control circuit 134 to turn ON the command descrambling circuit 136 (enables the descrambling function), and receives the switching control signal which turns OFF the command descrambling function to turn OFF the command descrambling circuit 136 (disables the descrambling function).

[0091] Thus, when the command descrambling circuit 136 is ON (or the descrambling function is enabled), the command (encrypted command) inputted through the input/output terminal section 12 is descrambled by the command descrambling circuit 136. When the command descrambling circuit 136 is OFF (or the descrambling function is disabled), the command is provided to the command decryption circuit 131 on the next stage through a bypass line so as to pass intactly without being descrambled.

[0092] That is, the semiconductor memory 10A according to the this embodiment is switchable between the two operating modes shown in Table 2.

[0093]

[Table 2]

Mode	Command Descrambling Circuit	Command Decryption Circuit
First Mode	OFF	ON
Second Mode	ON	OFF

[0094] Next, operations in the respective modes and the mode switching operation will be described. First, the operation of the semiconductor memory 10A in the first mode will be described.

[0095] At the turning-on of the information processing apparatus 1, the semiconductor memory 10A is set so as to operate in the first mode. Thus, when power is turned on, the mode control circuit 134 provides the ON control signal to the command decryption circuit 131, and provides the OFF control signal to the command descrambling circuit 136.

[0096] Then, when an encrypted command is provided from the information processing apparatus 1 to the semiconductor memory 10A, the command is provided through the input/output terminal section 12 to the command descrambling circuit 136.

[0097] In the first mode, however, the command bypasses the command descrambling circuit 136 and is provided to the command decryption circuit 131 because the command descrambling circuit 136 is controlled to be OFF. At this time, the command is subjected to the decryption process in the command decryption circuit 131 because the command decryption circuit 131 is controlled to be ON.

[0098] The decrypted command is provided to the command judgment circuit 132. The command judgment circuit 132 extracts an instruction code and an address code from the decrypted command to provide a read signal and address data to the memory core section 11. In response to this, data is read from the memory core section 11, and is outputted through the input/output terminal section 12 and the data buses to the information processing apparatus 1. The information processing apparatus 1 executes information processing in accordance with the read data.

[0099] Next, description will be given on an instance wherein the semiconductor memory 10A operating in the first mode is switched to the second mode.

[0100] Prior to the generation of the command for mode switching to the second mode, the information processing apparatus 1 generates an encrypted command containing control data for initializing the register 135 and the descrambling value to provide the encrypted command to the semiconductor memory 10A. This command is provided through the input/output terminal section 12 and the command descrambling circuit 136 to the command decryption circuit 131.

[0101] This encrypted command is decrypted by the command decryption circuit 131 to be judged, by the command judgment circuit 132, the command for initializing the register 135 (for specifying the setting of the descrambling value). The initializing command and the descrambling value are provided to the register 135 by the mode control circuit 134, and the descrambling value is loaded into the register 135.

[0102] Subsequently, the information processing apparatus 1 generates the command for mode switching to the second mode to provide the command for mode switching to the second mode to the semiconductor memory 10A. This command is provided through the input/output terminal section 12 to the command descrambling circuit 136. In the first mode, the command bypasses the body 136t of the command descrambling circuit and is provided to the command decryption circuit 131 because the command descrambling circuit 136 is controlled to be OFF. Then, the command is decrypted by the command decryption circuit 131, and the decrypted command is provided to the command judgment circuit 132.

[0103] The command judgment circuit 132 judges that the provided command is the command for mode switching to the second mode to provide the mode transition information about the transition to the second mode to the mode control circuit 134. In response to the mode switching command, the mode control circuit 134 controls the command descrambling circuit 136 to be ON, and controls the command decryption circuit 131 to be OFF, thereby switching the mode to the second mode. This causes the semiconductor memory 10A to subsequently operate in the second mode.

[0104] Next, the information processing apparatus 1 generates an unencrypted and scrambled command to provide the command to the semiconductor memory 10A. This scrambled command is provided through the input/output terminal section 12 to the command descrambling circuit 136. In this second mode, the command descrambling circuit 136 is controlled to be ON, and the command decryption circuit 131 is controlled to be OFF. Therefore, the scrambled command is subjected to the descrambling process by the command descrambling circuit 136. Thereafter, the command bypasses the body 131t of the command decryption circuit, and is provided to the command judgment circuit 132.

[0105] The command judgment circuit 132 obtains an instruction code and an address code from the command to provide a read signal and address data to the memory core section 11. In response to this, data is outputted from the memory core section 11.

[0106] The data outputted from the memory core section 11 is outputted through the input/output terminal section 12 and the data buses to the information processing apparatus 1. The information processing apparatus 1 executes information processing in accordance with the read data. Subsequently, the information processing apparatus 1 generates commands sequentially, whereby the operation described above, that is, the above said command being subjected to the descrambling process followed by being provided to the command judgment circuit 132 without decryption and reading out of the memory core section 11 data, is repeated.

[0107] Next, description will be given on an instance wherein the semiconductor memory 10A operating in the second mode is switched to the first mode.

[0108] When the information processing apparatus 1 generates the command (scrambled command) for mode switching to the first mode to provide the command for mode switching to the first mode to the semiconductor memory 10A, this command is provided through the input/output terminal section 12 to the command descrambling circuit 136. At this time, the command descrambling circuit 136 is controlled to be ON and the command decryption circuit 131 is controlled to be OFF because the semiconductor memory 10A is in the second mode. Therefore, the scrambled command is descrambled by the descrambling circuit 136. Thereafter, this command bypasses the body 131t of the command decryption circuit and is provided to the command judgment circuit 132.

[0109] The command judgment circuit 132 judges that the inputted command is the command for mode switching to the first mode to provide the mode transition information about the transition to the first mode to the mode control circuit 134. The mode control circuit 134 accordingly controls the command descrambling circuit 136 to be OFF, and controls the command decryption circuit 131 to be ON. Thus, the mode of the memory control section 13A is switched to the first mode.

[0110] The operation of the semiconductor memory 10A according to the second embodiment, that is, the access control of the memory core section 11 by the memory control section 13A is carried out as described above. In the second embodiment, the access control of the memory core section 11 is effected while a mode change (or a mode transition) is made between the first mode in which the security strength is high as the command is encrypted and the second mode in which the command is scrambled and the security strength is low.

[0111] Thus, a command security method using a combination of the presence/absence of command encryption and the presence/absence of command descrambling changes with time. This makes it difficult to analyze the command types and command descrambling regularity, to provide the security of the data stored in the memory core section 11.

[0112] Further, combining the first mode in which the security strength is high but the processing burden is heavy and the second mode in which the security strength is low but the processing burden is slight achieves improvements in processing speed while the security strength is maintained high.

{Third Embodiment}

[0113] Next, the construction of a semiconductor memory 10B according to a third embodiment will be described. Fig. 7 is a circuit block diagram of the semiconductor memory 10B. Components similar to those of the first and second embodiments will not be described.

[0114] The semiconductor memory 10B according to the third embodiment is constructed such that the first embodiment and the second embodiment are combined together. Specifically, the memory control section 13 includes both the data scrambling circuit 133 and the command descrambling circuit 136.

[0115] The semiconductor memory 10B according to the third embodiment is operable while switching between the two operating modes shown in Table 3. That is, in the first mode, the command descrambling circuit 136 is controlled to be OFF, the command decryption circuit 131 is controlled to be ON, and the data scrambling circuit 133 is controlled to be either ON or OFF. In the second mode, the command descrambling circuit 136 is controlled to be OFF, the command decryption circuit 131 is controlled to be either ON or OFF, and the data scrambling circuit 133 is controlled to be ON.

[0116]

[Table 3]

Mode	Command Descrambling Circuit	Command Decryption Circuit	Data Scrambling Circuit
First Mode	OFF	ON	ON/OFF
Second Mode	OFF	ON/OFF	ON

[0117] Also in this embodiment, the semiconductor memory 10B is set so as to operate in the first mode at the turning-on of the information processing apparatus 1. Thus, when power is turned on, the mode control circuit 134 provides the ON control signal to the command decryption circuit 131, provides the OFF control signal to the command descrambling circuit 136, and provides the ON control signal to the data scrambling circuit 133.

[0118] Then, when an encrypted command is provided from the information processing apparatus 1 to the semiconductor memory 10B, the command bypasses the body 131t of the command descrambling circuit, and is subjected to the decryption process in the command decryption circuit 131. Thereafter, the command is provided to the command judgment circuit 132.

[0119] The command judgment circuit 132 extracts a read signal and address data from the decrypted command to provide the read signal and the address data to the memory core section 11. In response to this, data stored at a given address is read from the memory core section 11. The read data is outputted to the information processing apparatus 1 after being subjected to the scrambling process in the data scrambling circuit 133 (or intactly without being subjected to the scrambling process if the data scrambling circuit 133 is controlled to be OFF).

[0120] When the semiconductor memory 10B receives the command for mode switching to the second mode from the information processing apparatus 1 while operating in the first mode, the mode control circuit 134 controls the command descrambling circuit 136 to be OFF and controls the data scrambling circuit 133 to be ON, thereby switching to the second mode.

[0121] In the second mode, the command decryption circuit 131 is turned either ON or OFF. Whether to turn ON or OFF the command decryption circuit 131 is controlled by a program (a command stored at an address) stored in the memory core section 11.

[0122] On the other hand, when the semiconductor memory 10B operates in the second mode, the command provided from the information processing apparatus 1 bypasses the body 136t of the command descrambling circuit, and is provided to the command decryption circuit 131. This command is provided to the command judgment circuit 132 after being subjected to the decryption process (or directly without being subjected to the decryption process).

[0123] The command judgment circuit 132 extracts a read signal and address data from the command to provide a read address to the memory core section 11. In response to this, data stored in a storage region of the memory core section 11 specified by the read address are sequentially read. The read data is scrambled by the data scrambling circuit 133, and is then outputted to the information processing apparatus 1.

[0124] When the command for mode switching to the first mode is provided from the information processing apparatus 1 during the operation in the second mode, the mode control circuit 134 controls the command descrambling circuit 136 to be OFF, controls the command decryption circuit 131 to be ON, and controls the data scrambling circuit 133 to be either ON or OFF.

[0125] Also in the third embodiment, the read operation of the semiconductor memory 10B is carried out while a mode change (or a mode transition) is made between the first mode in which the security strength is high as the command is encrypted and the second mode in which the data is scrambled and the security strength is low. Thus, a security method for the command and data (that is, whether to need decryption of the command and the presence/absence of data scrambling) changes with time. This makes it difficult to analyze the command and data.

[0126] Further, combining the first mode in which the security strength is high but the processing burden is heavy and the second mode in which the security strength is low but the processing burden is slight achieves improvements in processing speed while the security strength is maintained high.

[0127] Further, because of the individual selective adoption of the data scrambling process in the first mode and the command decryption process in the second mode, the time when the data scrambling and the command decryption processes are performed is unintelligible even in the same mode. This makes it more difficult to analyze the circuits in the sections.

[0128] In the second mode, the command descrambling circuit 136 may be ON and the data scrambling circuit 133 may be OFF. That is, similar effects are produced when the relation between ON and OFF of the two circuits 136 and 133 shown in Table 3 is reversed.

[0129] The construction of the semiconductor memory 10 according to fourth to sixth embodiments below is similar to the circuit construction of the semiconductor memory 10B of the third embodiment shown in Fig. 7, but differs only in control method in the operating modes. Thus, the details of the operation of the semiconductor memory 10B will be described in the following embodiments.

{Fourth Embodiment}

[0130] The semiconductor memory 10B according to the fourth embodiment is operable while switching between the two operating modes as shown in Table 4. This embodiment is similar to the third embodiment except that the command descrambling circuit 136 is controlled to be ON in the second mode.

[0131]

[Table 4]

Mode	Command Descrambling Circuit	Command Decryption Circuit	Data Circuit
First Mode	OFF	ON	ON/OFF
Second Mode	ON	ON/OFF	ON

[0132] Specifically, in the first mode according to the fourth embodiment, the command descrambling circuit 136 is turned OFF, the command decryption circuit 131 is turned ON, and the data scrambling circuit 133 is turned either ON or OFF. A command for such control is provided from the information processing apparatus 1 to the semiconductor memory 10B, and control is effected as in the first mode of Table 4 by the cooperative actions of the command judgment circuit 132 and the mode control circuit 134.

[0133] For mode switching to the second mode, on the other hand, a command for turning ON the command descrambling circuit 136, for turning ON or OFF the command decryption circuit 131 and for turning ON the data scrambling circuit 133 is provided from the information processing apparatus 1, and control is effected as in the second mode of Table 4 by the cooperative actions of the command judgment circuit 132 and the mode control circuit 134.

[0134] In the first mode in which the security strength is high according to the fourth embodiment, the command is encrypted, and the data is scrambled on some occasions and is not on other occasions. In the second mode in which the security strength is low, the command and data are scrambled, and the command is encrypted on some occasions and is not on other occasions. Further, the access control of the memory core section 11 is effected while a mode change is made between the first mode and the second mode. This makes it difficult to analyze the scrambling or descrambling regularity and the command, to provide the security of the data stored in the semiconductor memory 10B.

{Fifth Embodiment}

[0135] The semiconductor memory 10B according to the fifth embodiment is operable while switching between the two operating modes as shown in Table 5. In the first mode, the command descrambling circuit 136 is controlled to be either ON or OFF, and the command decryption circuit 131 and the data scrambling circuit 133 are controlled to be ON. In the second mode, the command descrambling circuit 136 and the data scrambling circuit 133 are controlled to be ON, and the command decryption circuit 131 is controlled to be either ON or OFF.

[0136]

[Table 5]

Mode	Command Descrambling Circuit	Command Decryption Circuit	Data Scrambling Circuit
First Mode	ON/OFF	ON	ON
Second Mode	ON	ON/OFF	ON

[0137] Also in the fifth embodiment, the semiconductor memory 10 is operated while a mode change is made between the first mode in which the security strength is high as the command is encrypted and the data is scrambled and the second mode in which the command and data are scrambled and the security strength is lower than that of the first mode.

{Sixth Embodiment}

[0138] The semiconductor memory 10 according to the sixth embodiment is operable while switching between the two operating modes as shown in Table 6, and is similar to the fifth embodiment except that the data scrambling circuit 133 is controlled to be OFF in the first mode, and will not be described in detail.

[0139]

[Table 6]

Mode	Command Descrambling Circuit	Command Decryption Circuit	Data Scrambling Circuit
First Mode	ON/OFF	ON	OFF
Second Mode	ON	ON/OFF	ON

[0140] Also in the sixth embodiment, the semiconductor memory 10 is operated while a mode change is made between the first mode in which the security strength is high as the command is encrypted and the second mode in which the command and data are scrambled and the security strength is lower than that of the first mode.

[0141] The fourth to sixth embodiments are described above. In each of the fourth to sixth embodiments, the access control of the semiconductor memory 10B is effected while the mode change is made between the first mode in which the security strength is high and the second mode in which the security strength is low. Thus, a security method for the command and data changes with time. This makes it difficult to analyze the command and data.

[0142] Further, the scrambling process, which is a method of making the data jumbled by means of the bit operation or the bit manipulation, requires a slight processing burden. Combining the first mode in which the security strength is high but the processing burden is heavy and the second mode in which the security strength is low but the processing burden is slight achieves improvements in processing speed while the security strength is maintained high.

[0143] The third to sixth embodiments may provide a variety of patterns of the operating modes by controlling the command decryption circuit 131 to be either ON or OFF in the second mode. It is, however, preferred to control the command decryption circuit 131 to be OFF in order to reduce the processing burden in the second mode as discussed above.

{Other Embodiments}

[0144] Functions to be described below may be added to the semiconductor memory 10 according to the present invention to enhance the security of data.

<1. Initialization Process for Scrambling>

[0145] The mode control circuit 134 is adapted to update the value stored in the register 135 during the operation in the first mode in which the security strength is high. Specifically, the value stored in the register 135 is adopted as the descrambling value for determining the descrambling regularity in the case where the command descrambling circuit 136 performs the command descrambling process, and also the scrambling value for determining the scrambling regularity in the case where the data scrambling circuit 133 performs the data scrambling process. This value (scrambling value or descrambling value) is made settable not only at the turning-on of the information processing apparatus 1 but also during the first mode by program processing.

[0146] Specifically, the command descrambling circuit 136 performs a bit manipulation (exclusive-OR operation or the like) on the descrambling value provided from the register 135 and the command provided from the information processing apparatus 1. The data scrambling circuit 133 performs a bit manipulation (exclusive-OR operation or the like) on the scrambling value provided from the register 135 and the data read from the memory core section 11.

[0147] Thus, changing the setting of the register 135 allows a change in command input relationship or in data output relationship. This enhances the security strength even in the scrambling process which is lower in security strength than the encryption process.

[0148] In this embodiment as described above, even if the structure of a scrambling circuit constituting the command descrambling circuit 136 or the data scrambling circuit 133 comes to light, it is impossible to analyze the regularity of the command descrambling and/or the data scrambling without analyzing the time when the command descrambling value and/or the data scrambling value is changed. This makes the security analysis more difficult.

[0149] Thus, even if the circuit structure of the command descrambling circuit 136 or the data scrambling circuit 133 is analyzed, the unauthorized read of the data stored in the semiconductor memory 10 requires the analysis of the time when the descrambling value or the descrambling value is generated in the first mode. This can compensate for the low security strength in the second mode.

<2. Abnormal Operating Mode>

[0150] Next, operation in a third mode will be described. As mentioned above, the decryption process or the descrambling process is executed on the command provided from the information processing apparatus 1 in the first mode and in the second mode. If a proper command, that is, a command generated using an encryption algorithm or a scrambling algorithm synchronized with the decryption algorithm or the descrambling algorithm of the semiconductor memory 10 is provided, the command judgment circuit 132 can properly judge the descriptions of the command.

[0151] On the contrary, if a command subjected to an unsynchronized unauthorized encryption process or scrambling process is received, the command judgment circuit 132 judges that the command after the decryption process or the descrambling process as an abnormal command. When the command itself is unauthorized even if the encryption process or the scrambling process is performed properly, the command is judged as an abnormal command.

[0152] When the command is judged as abnormal, the command judgment circuit 132 changes the mode of the semiconductor memory 10B to the third mode which is the abnormal operating mode. After the transition to the third mode, the command judgment circuit 132 effects control so as to inhibit the process of accessing the memory core section 11. Fig. 8 shows a relationship between the first to third modes.

[0153] Once having changed to the third mode, the semiconductor memory 10 (or 10A or 10B) is not able to make a transition to the other modes. The command judgment circuit 132 inhibits access to the memory core section 11, and does not generate the mode transition information about the transition to the other modes.

[0154] Therefore, when the command subjected to the unauthorized encryption process (or the unauthorized command) or the unauthorized scrambling process is provided to the semiconductor memory 10, the semiconductor memory 10 immediately makes a transition to the third mode, and subsequently access to the memory core section 11 is inhibited. This enhances the security strength against unauthorized acts to reduce the observability of signals, thereby making the unauthorized read of the data more difficult.

<3. Control Mainly Using Second Mode>

[0155] Although the semiconductor memories 10, 10A and 10B according to the embodiments have the plurality of operating modes as described above, the information processing apparatus 1 effects control so that the semiconductor memories 10, 10A and 10B operate mainly in the second mode in order to balance the security strength and performance. A command may be provided to the semiconductor memory 10 for transition to the first mode at predetermined time intervals or after a lapse of time specified by an application program operating in the information processing apparatus 1.

[0156] In other words, setting the operating time of the second mode longer than that of the first mode improves the performance of the information processing apparatus 1. Making a transition to the first mode in which the security strength is high at a certain timing enhances the security strength and initializes the scrambling process whereby the security strength after the transition back to the second mode is reinforced. This maintains a relatively high security strength and provides a relatively short read time on average for all operating times of the information processing apparatus 1.

<4. Management of Memory Regions Depending on Operating Modes>

[0157] The semiconductor memories 10, 10A and 10B according to the embodiments of the present invention have the plurality of operating modes corresponding to different security levels as mentioned above. Additionally, different memory regions (or spaces) accessible depending on the modes may be set.

[0158] Fig. 9 shows storage regions of the memory core section 11 in diagrammatic form. An accessible region and an inaccessible region depending on the modes are defined in the memory core section 11. For example, a storage region 11A is a region determined to be accessible only in the first mode, and a storage region 11B other than the storage region 1 A is a region determined to be accessible in all of the modes.

[0159] Thus making the storage regions of the memory core section 11 definable as the accessible and inaccessible regions depending on the modes further strengthens the security of important data, for example, by storing the data requiring the highest security in the region 11A.

[0160] In the method of managing the storage regions of the memory core section 11 shown in Fig. 9, the storage region 11A accessible in the first mode and the storage region 11B accessible also in other modes are managed in distinction from each other. This is an example, and other types of storage region management are conceivable. For example, the memory core section 11 may be divided into a plurality of storage regions. These storage regions may be independently defined as storage regions accessible in the respective mode. One of the storage regions may be defined as an accessible storage region common to the two modes: the first mode and the second mode.

<5. Command with Return Condition>

[0161] Next, a command with a return condition will be described. The command with the return condition generated by the information processing apparatus 1 is a command for specifying temporarily changing the current operating mode of the semiconductor memory 10 to a different mode and then returning the current operating mode back to the original mode again after a lapse of predetermined time. This command with the return condition is a command, for example, which indicates "changing the current mode (the first mode) to the second mode, and changing to the first mode again after ten seconds" and the like. The command with the return condition contains information about the mode type to which a transition is temporarily made and information specifying the length of time for the transition.

[0162] Thus, all of the commands for changing the modes are controlled so as to be accepted and processed only in the first mode having the highest security level. In other words, all of the mode changes are carried out so as to make a transition from the first mode to another mode and then return to the first mode after a lapse of specified time.

<6. Modifications>

[0163] The information processing apparatus 1 to and from which the semiconductor memories 10, 10A and 10B according to the embodiments described hereinabove are attached and removed is applicable specifically to a personal computer, a handheld terminal apparatus such as a PDA, an image processing apparatus, a game apparatus (including portable and stationary types), a portable telephone, and the like. The invention described in this application may be used as a semiconductor memory removable from any of these apparatuses.

[0164] A circuit construction in the above-mentioned embodiments is such that the command provided from the information processing apparatus 1 is inputted first to the command descrambling circuit 136 and is inputted then to the command decryption circuit 131. The sequence in which the circuits are connected may be reversed (the construction is such that the command decryption is performed first).

[0165] In the above-mentioned embodiments, the command descrambling circuit 136 and the data scrambling circuit 133 share the use of the single register 135. However, individual registers may be provided for the command descrambling circuit 136 and the data scrambling circuit 133, respectively, to independently load the descrambling value and the scrambling value into the individual registers.

[0166] The semiconductor memories 10, 10A and 10B are shown as incorporating the memory control section 13 in the above-mentioned embodiments. The memory control section 13, however, need not always be constructed integrally with the memory core section 11. For example, a general-purpose mask ROM may be used in place of the memory core section 11. In such a case, a circuit having a function similar to that of the memory control section 13 of the embodiments of the present invention is added externally in association with the mask ROM. Such a construction can provide the security of the data stored in the general-purpose ROM.

[0167] While the invention has been shown and described in detail, the foregoing description is in all aspects illustrative and not restrictive. It is therefore understood that numerous modifications and variations can be devised without departing from the scope of the invention.

Claims

1. A semiconductor memory device (10, 10A, 10B) removably mounted to an information processing apparatus (1), comprising:

a memory core section (11) for storing therein data including a program to be protected, said memory core section including an address input section and a data output section;

an input/output terminal section (12) including command input terminals for receiving a command including an instruction code and address data from said information processing apparatus, and data output terminals for providing data read from said memory core section to said information processing apparatus; and

a memory control means (13, 13A, 13B) connected between said memory core section and said input/output terminal section,

wherein said memory control means includes:

a command decryption means (131) selectively operative to decrypt the command provided to said command input terminals or to output the command intactly;

a scrambling means (133) selectively operative to scramble the data read from said memory core section or to output the data intactly;

a command judgment means (132) for judging whether the command provided from said information processing apparatus is a first command specifying a transition to a first operating mode or a second command specifying a transition to a second operating mode; and

an operating mode control means (134) selecting the first operating mode for enabling a command decryption function of said command decryption means in response to a judgment of the first command made by said command judgment means, and selecting the second operating mode for enabling a scrambling function of said scrambling means in response to a judgment of the second command made by said command judgment means.

2. The semiconductor memory device (10A, 10B) according to claim 1,
wherein said memory control means (13A, 13B) includes
a descrambling means (136) selectively operative to pass the command provided to said command input terminals intactly therethrough or to descramble the command, and
wherein said operating mode control means disables a descrambling function of said descrambling means when said first operating mode is selected.

3. The semiconductor memory device (10A, 10B) according to claim 2,
wherein said operating mode control means enables the descrambling function of said descrambling means when said second operating mode is selected.

4. A semiconductor memory device (10A, 10B) removably mounted to an information processing apparatus (1), comprising:

a memory core section (11) for storing therein data including a program to be protected, said memory core section including an address input section and a data output section;

a memory control means (13A, 13B) connected between said memory core section and said input/output terminal section,

wherein said memory control means includes:

a descrambling means (136) selectively operative to descramble the command provided to said command input terminal or to output the command intactly;

a command decryption means (131) selectively operative to decrypt the command provided to said command input terminals or to output the command intactly;

an operating mode control means (134) selecting the first operating mode for enabling a command decryption function of said command decryption means in response to a judgment of the first command made by said command judgment means, and selecting the second operating mode for enabling a descrambling function of said descrambling means in response to a judgment of the second command made by said command judgment means.

5. The semiconductor memory device (10B) according to claim 4,
wherein said memory control means (13B) includes
a scrambling means (133) selectively operative to scramble the data read from said memory core section or to output the data read from said memory core section intactly, and
wherein said operating mode control means enables a scrambling function of said scrambling means when said second operating mode is selected.

6. The semiconductor memory device (10B) according to claim 5,
wherein said operating mode control means disables the scrambling function of said scrambling means when said first operating mode is selected.

7. A semiconductor memory device (10B) removably mounted to an information processing apparatus (1), comprising:

a memory core section (11) for storing therein data including a program to be protected, said memory core section including an address input section and a data output section;

a memory control means (13B) connected between said memory core section and said input/output terminal section,

wherein said memory control means includes:

a descrambling means (136) selectively operative to descramble the command provided to said command input terminal or to output the command intactly;

a command decryption means (131) selectively operative to decrypt the command provided to said command input terminals or to output the command intactly;

a scrambling means (133) selectively operative to scramble the data read from said memory core section or to output the data intactly;

an operating mode control means (134) selecting the first operating mode for disabling a descrambling function of said descrambling means and for enabling a command decryption function of said command decryption means in response to a judgment of the first command made by said command judgment means, and selecting the second operating mode for enabling one of the functions of said descrambling means and said scrambling means in response to a judgment of the second command made by said command judgment means.

8. The semiconductor memory device (10B) according to claim 7,
wherein said operating mode control means enables both of the functions of said descrambling means and said scrambling means in response to the judgment of the second command made by said command judgment means.

9. The semiconductor memory device (10B) according to claim 7,
wherein said operating mode control means enables the scrambling function of said scrambling means in response to the judgment of the first command made by said command judgment means.

10. The semiconductor memory device (10, 10A, 10B) according to any one of claims 1 to 9,
wherein said input/output terminal section includes a predetermined number of terminals which are used as both said command input terminals and said data output terminals by switching therebetween in a time-sharing manner.

11. The semiconductor memory device (10, 10B) according to claim 1 or 7,
wherein said memory control means includes
a register (135) for setting a scrambling condition of said scrambling means, and
wherein said operating mode control means updates the contents of said register during an operation in said first operating mode.

12. The semiconductor memory device (10A, 10B) according to claim 4,
wherein said memory control means includes
a register (135) for setting a descrambling condition of said descrambling means, and
wherein said operating mode control means updates the contents of said register during an operation in said first operating mode.

13. The semiconductor memory device (10, 10A, 10B) according to any one of claims 1 to 9 and 12,
wherein said semiconductor memory device being controlled by a command provided from said information processing apparatus so that a period of operation in said first operating mode is longer than a period of operation in said second operating mode.

14. The semiconductor memory device (10,10A, 10B) according to claim 10,
wherein said semiconductor memory device being controlled by a command provided from said information processing apparatus so that a period of operation in said first operating mode is longer than a period of operation in said second operating mode.

15. The semiconductor memory device (10, 10B) according to claim 11,
wherein said semiconductor memory device being controlled by a command provided from said information processing apparatus so that a period of operation in said first operating mode is longer than a period of operation in said second operating mode.

Drawing

Search report

Cited references

REFERENCES CITED IN THE DESCRIPTION

This list of references cited by the applicant is for the reader's convenience only. It does not form part of the European patent document. Even though great care has been taken in compiling the references, errors or omissions cannot be excluded and the EPO disclaims all liability in this regard.

Patent documents cited in the description